$ rpki-client -vvf rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft File: vIYHvM59W9TtuRjN4bc0W4HmrR0.mft (raw, json) Hash identifier: siFMSca9QM6CahwBbCmWgp0nl7IgBvGZo5rAdJ7l2wU= Subject key identifier: B1:FE:99:33:65:AF:E7:26:A1:CC:F7:F4:0B:6F:80:45:37:DC:64:24 Authority key identifier: BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D Certificate issuer: /CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Certificate serial: 0C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft Manifest number: 0C5F Signing time: Fri 30 May 2025 18:29:44 +0000 Manifest this update: Fri 30 May 2025 18:29:43 +0000 Manifest next update: Fri 06 Jun 2025 18:29:43 +0000 Files and hashes: 1: vIYHvM59W9TtuRjN4bc0W4HmrR0.crl (hash: xDz63u8aDmXMU4s9HOA+tg1A47rHRjbP86sD+7D8AIs=) 2: 87B023F2FF9E11E998D7BF77C4F9AE02.roa (hash: wgxBqTOXaVBqDTXi3QmSfIMhu4UE3inSSK8gOm0zVzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B489, serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Validity Not Before: May 30 18:29:43 2025 GMT Not After : Jun 6 18:29:43 2025 GMT Subject: CN=6839f918-ea32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:51:0a:18:6e:bd:16:34:03:fe:22:3d:64:12: df:1f:a9:5d:a9:11:85:0e:96:24:82:11:d4:49:fd: 02:f2:55:e2:2b:e5:23:b3:81:56:d0:33:e8:d5:c4: 26:c1:cd:38:ab:dd:b6:2b:c2:80:48:59:45:72:d2: bd:d5:c3:6c:fe:d1:56:2c:eb:fb:02:5f:a5:b3:1a: f5:d4:0d:3b:44:be:80:f4:7c:00:9c:0e:e3:3e:5c: b7:c0:7f:e1:0b:17:00:5d:3c:8d:2c:9b:bc:ee:21: ae:d2:3c:51:7b:fb:b0:f9:25:4b:d6:08:7a:25:20: f8:47:99:0d:18:6b:88:63:2b:f2:d9:1f:3d:e5:68: 38:a8:9b:6c:e4:c2:67:82:02:e6:f4:0e:55:26:a5: 47:f7:b3:7f:1c:f0:73:90:5a:b0:f6:c5:f1:e4:37: 91:21:5c:fc:82:d2:62:99:f1:19:4a:72:a6:a6:04: 29:68:61:a3:dd:d4:bc:35:71:15:a3:ab:be:80:33: 4e:78:3d:31:8b:f9:53:5e:99:82:f6:7d:48:70:19: 5e:a7:a2:e5:85:b5:d7:9f:5f:8b:a0:bf:b9:05:d3: c7:9d:12:f2:e0:1a:a5:ed:3a:5a:9f:1b:e3:93:2a: 7a:70:15:84:89:69:8c:a7:61:a2:02:6d:ac:d7:1b: c8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FE:99:33:65:AF:E7:26:A1:CC:F7:F4:0B:6F:80:45:37:DC:64:24 X509v3 Authority Key Identifier: keyid:BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:17:7d:5a:56:55:0a:94:04:f4:d3:98:24:26:14:92:00:6e: 86:e9:f3:61:8c:fc:73:e9:a5:f2:b8:2b:9d:d2:c1:2c:0d:0e: 5f:68:2e:fb:d7:47:e4:63:9d:9b:50:21:c4:19:ac:7b:aa:52: 56:11:5a:a9:e1:5b:bf:fd:a2:02:60:14:9b:bc:e9:04:6f:dc: 45:4f:da:d1:d1:ef:04:84:a4:8a:a5:d9:0c:26:a9:e9:c9:76: b7:10:30:45:ba:a2:b6:29:35:df:00:4c:af:9d:b4:ec:c9:cc: 9f:5a:20:b8:c9:3d:7a:2e:d1:2d:00:43:1f:98:37:da:6f:c2: 7e:98:04:e1:00:9f:bd:5c:0e:fc:ee:5d:a5:86:3f:bb:5e:b7: cb:0a:9f:5d:c9:fa:28:11:a6:3a:dd:55:19:f4:27:f8:4d:4f: 0e:01:b3:6d:1a:ac:42:c7:46:ac:5c:77:b1:c1:55:cd:8c:93: 14:d1:92:7d:33:46:f5:20:2b:89:ac:19:4c:8c:1d:be:99:1c: 89:79:fb:f0:f2:a9:43:ba:67:9f:fa:7e:a8:7b:66:be:ac:2d: 11:bd:fa:75:0d:24:aa:21:29:9c:dd:6c:e6:e8:d3:e0:51:2b: bb:85:86:5d:34:bb:43:99:d2:ce:d1:12:09:66:2e:11:c4:d9: 1d:5e:d7:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0ODkxMTAvBgNVBAUTKEJDODYwN0JDQ0U3RDVCRDRFREI5MThDREUxQjczNDVC ODFFNkFEMUQwHhcNMjUwNTMwMTgyOTQzWhcNMjUwNjA2MTgyOTQzWjAYMRYwFAYD VQQDEw02ODM5ZjkxOC1lYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31EKGG69FjQD/iI9ZBLfH6ldqRGFDpYkghHUSf0C8lXiK+Ujs4FW0DPo1cQm wc04q922K8KASFlFctK91cNs/tFWLOv7Al+lsxr11A07RL6A9HwAnA7jPly3wH/h CxcAXTyNLJu87iGu0jxRe/uw+SVL1gh6JSD4R5kNGGuIYyvy2R895Wg4qJts5MJn ggLm9A5VJqVH97N/HPBzkFqw9sXx5DeRIVz8gtJimfEZSnKmpgQpaGGj3dS8NXEV o6u+gDNOeD0xi/lTXpmC9n1IcBlep6LlhbXXn1+LoL+5BdPHnRLy4Bql7Tpanxvj kyp6cBWEiWmMp2GiAm2s1xvIUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH+mTNl r+cmocz39AtvgEU33GQkMB8GA1UdIwQYMBaAFLyGB7zOfVvU7bkYzeG3NFuB5q0d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjQ4OS8wQjM4NzlDQUZG OUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5VHR1UmpONGJjMFc0SG1y UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWUh2TTU5VzlUdHVSak40YmMwVzRIbXJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjQ4OS8wQjM4NzlDQUZGOUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5 VHR1UmpONGJjMFc0SG1yUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtF31aVlUKlAT005gkJhSSAG6G6fNhjPxz6aXyuCud0sEsDQ5faC77 10fkY52bUCHEGax7qlJWEVqp4Vu//aICYBSbvOkEb9xFT9rR0e8EhKSKpdkMJqnp yXa3EDBFuqK2KTXfAEyvnbTsycyfWiC4yT16LtEtAEMfmDfab8J+mAThAJ+9XA78 7l2lhj+7XrfLCp9dyfooEaY63VUZ9Cf4TU8OAbNtGqxCx0asXHexwVXNjJMU0ZJ9 M0b1ICuJrBlMjB2+mRyJefvw8qlDumef+n6oe2a+rC0Rvfp1DSSqISmc3Wzm6NPg USu7hYZdNLtDmdLO0RIJZi4RxNkdXtef -----END CERTIFICATE-----Generated at Sat May 31 17:22:04 2025 by rpki-client